Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/i-tlpxrwKVknKswA1cTBlYOF3pQ.cer
File: i-tlpxrwKVknKswA1cTBlYOF3pQ.cer (raw, json)
Hash identifier: t9yqfhpioQ5EctxL10xeiQFVdTTDpdt0SVCukovFUi8=
Subject key identifier: 8B:EB:65:A7:1A:F0:29:59:27:2A:CC:00:D5:C4:C1:95:83:85:DE:94
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3B71957BA6ED6770B27A9BBBFA65BF2
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f5/de9957-c7cc-4997-a22b-165a846d481d/1/i-tlpxrwKVknKswA1cTBlYOF3pQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f5/de9957-c7cc-4997-a22b-165a846d481d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 06:30:05 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 41676
IP: 77.46.0.0/22
IP: 80.238.96.0/19
IP: 93.174.24.0/21
IP: 109.233.88.0/21
IP: 176.241.240.0/21
IP: 185.25.216.0/22
IP: 185.78.132.0/22
IP: 185.93.92.0/22
IP: 185.102.188.0/22
IP: 2a00:64e0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:19:57:ba:6e:d6:77:0b:27:a9:bb:bf:a6:5b:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 06:30:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8beb65a71af02959272acc00d5c4c1958385de94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:09:ec:22:3b:20:f0:5e:94:d8:17:35:53:13:
3c:06:d1:2f:3a:ea:44:40:9e:bf:7f:30:31:73:23:
c0:7e:99:62:26:f5:e8:1c:9d:d1:69:a7:14:3e:d0:
db:dd:66:6b:c3:a1:af:ea:2a:f3:6e:bf:f9:1b:70:
c1:55:0d:93:57:fb:62:0a:ef:f8:7d:00:7f:66:1f:
ed:74:0f:6a:9a:b5:ba:10:06:0c:74:af:05:e1:cb:
77:b2:30:6d:22:41:cd:a1:f3:44:76:9e:8b:2a:59:
54:23:e0:42:51:f9:fd:48:1b:e0:13:c5:34:60:a2:
8b:ba:cc:4c:33:ea:ed:62:57:7c:ea:64:74:2b:8b:
58:9d:d7:cb:88:05:e3:94:75:b3:47:34:e5:e8:0b:
f5:18:1d:11:3f:1f:04:e7:7b:60:a5:cf:28:9c:6b:
6b:63:f9:21:a2:c4:7d:48:92:0d:95:00:0d:0d:56:
d7:4a:93:0d:c3:e2:ab:51:99:ad:04:36:b2:63:ea:
01:fa:63:99:17:ee:2a:f1:b0:71:70:de:39:93:91:
86:17:69:c1:51:f2:75:75:7f:57:54:f1:17:cb:f7:
28:5c:18:3c:7c:95:d0:b4:9b:6e:4b:f3:42:0f:30:
fc:8e:d1:78:c6:e0:76:c2:3a:7b:89:9d:ad:11:89:
8a:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:EB:65:A7:1A:F0:29:59:27:2A:CC:00:D5:C4:C1:95:83:85:DE:94
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/de9957-c7cc-4997-a22b-165a846d481d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/de9957-c7cc-4997-a22b-165a846d481d/1/i-tlpxrwKVknKswA1cTBlYOF3pQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.46.0.0/22
80.238.96.0/19
93.174.24.0/21
109.233.88.0/21
176.241.240.0/21
185.25.216.0/22
185.78.132.0/22
185.93.92.0/22
185.102.188.0/22
IPv6:
2a00:64e0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41676
Signature Algorithm: sha256WithRSAEncryption
8d:20:27:d2:ec:76:02:b8:e8:d3:63:4e:24:fa:5b:7b:df:48:
30:ae:8d:08:c5:86:7f:72:e8:b9:38:a2:20:d7:18:e7:92:e1:
73:fd:f3:95:f2:9f:fd:f0:1f:c3:94:1c:60:cb:b6:d8:41:f6:
a5:17:fa:a5:7d:d0:63:cc:37:e3:21:5e:a8:31:7a:9e:4d:49:
e0:67:82:3e:ed:de:94:76:da:94:98:59:29:67:32:3b:50:01:
fb:2a:4d:7d:74:b6:e3:5a:e7:cb:62:cf:05:95:5e:04:fc:61:
72:41:b9:9a:6c:27:4f:e5:b0:53:bc:30:bf:d6:cd:13:69:6a:
94:c7:bb:2b:a1:e0:3e:01:03:7e:b8:b9:04:15:82:45:6e:5c:
a8:d3:0e:1e:a4:98:cc:0b:0a:be:d6:a6:72:d1:24:60:61:b6:
31:77:a8:0c:39:67:7a:ee:e7:06:ff:41:14:5c:a3:d6:b7:cf:
9b:03:a2:21:97:d5:58:01:93:ef:eb:00:d0:f9:4f:92:1f:cd:
d8:1d:42:cd:14:fd:75:3a:76:25:45:dc:97:d7:5c:7d:6f:83:
81:fd:b7:21:87:26:94:f0:c0:13:50:9b:1e:9d:fa:c8:73:84:
09:14:ab:c7:bf:41:54:19:4c:56:87:91:43:21:59:da:88:7e:
c8:c1:bc:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:20:00 2024 by rpki-client on console-fra.rpki-client.org